Seamless data masking for PaaS based applications
First Claim
Patent Images
1. A method, comprising:
- providing a platform as a service (PaaS) software, including a plurality of software environments, on a computer;
deploying a software application in one of the software environments of the PaaS software;
executing a data masking engine in one of the software environments of the PaaS software, wherein the data masking engine monitors inbound or outbound traffic of the deployed software application, passing through endpoints of the software application, supplied by the PaaS software;
defining, for the data masking engine, one or more data masking rules;
detecting, by the data masking engine, data processed by the software application in accordance with a given data masking rule; and
performing, by the data masking engine, a data masking operation on the detected data in accordance with the given data masking rule.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, computing systems and computer program products implement embodiments of the present invention that include defining, for a data masking engine executing in a platform as a service (PaaS) based software environment, one or more data masking rules. Upon detecting, by the data masking engine, data processed by a software application executing within the PaaS based software environment and in accordance with a given data masking rule, the data masking engine can perform a data masking operation on the data.
17 Citations
16 Claims
-
1. A method, comprising:
-
providing a platform as a service (PaaS) software, including a plurality of software environments, on a computer; deploying a software application in one of the software environments of the PaaS software; executing a data masking engine in one of the software environments of the PaaS software, wherein the data masking engine monitors inbound or outbound traffic of the deployed software application, passing through endpoints of the software application, supplied by the PaaS software; defining, for the data masking engine, one or more data masking rules; detecting, by the data masking engine, data processed by the software application in accordance with a given data masking rule; and performing, by the data masking engine, a data masking operation on the detected data in accordance with the given data masking rule. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An apparatus, comprising:
-
a memory configured to store code of a platform as a service (PaaS) software; and a processor configured; to run the code of the PaaS, to provide a PaaS including a plurality of software environments; to deploy a software application in one of the software environments of the PaaS software; to execute a data masking engine in one of the software environments of the PaaS software, wherein the data masking engine monitors inbound or outbound traffic of the deployed software application, passing through endpoints of the software application, supplied by the PaaS software; to define, for the data masking engine, one or more data masking rules, to detect data processed by the software application executing in accordance with a given data masking rule, and to perform a data masking operation on the detected data in accordance with the given data masking rule. - View Dependent Claims (10, 11, 12)
-
-
13. A computer program product, the computer program product comprising:
a non-transitory computer readable storage medium having computer readable program code embodied therewith, the computer readable program code comprising; computer readable program code configured to provide a platform as a service (PaaS) including a plurality of software environments, to deploy a software application in one of the software environments of the PaaS software, to execute a data masking engine in one of the software environments of the PaaS software, wherein the data masking engine monitors inbound or outbound traffic of the deployed software application, passing through endpoints of the software application, supplied by the PaaS software, and to define, for the data masking engine one or more data masking rules; computer readable program code configured to detect, by the data masking engine, data processed by the software application executing in accordance with a given data masking rule; and computer readable program code configured to perform, by the data masking engine, a data masking operation on the detected data in accordance with the given data masking rule. - View Dependent Claims (14, 15, 16)
Specification